Aggressive data deduplication using lazy garbage collection

ABSTRACT

A method for extending data lifetime for reference in deduplication is provided. The method includes determining that a quantity of user data has at least a threshold amount of data that is re-created in a storage system. The method includes protecting at least portions of the quantity of user data from erasure by garbage collection in the storage system during a predetermined time interval, wherein the protected at least portions are available for data deduplication of further user data in the storage system during the predetermined time interval.

BACKGROUND

Solid-state memory, such as flash, is currently in use in solid-state drives (SSD) to augment or replace conventional hard disk drives (HDD), writable CD (compact disk) or writable DVD (digital versatile disk) drives, collectively known as spinning media, and tape drives, for storage of large amounts of data. Flash and other solid-state memories have characteristics that differ from spinning media. Yet, many solid-state drives are designed to conform to hard disk drive standards for compatibility reasons, which makes it difficult to provide enhanced features or take advantage of unique aspects of flash and other solid-state memory. Solid-state storage memory, particularly flash memory, may have limited write and erase cycle endurance, which pose obstacles in the use of solid-state storage memory for backup systems and/or deduplication systems. In addition, some systems or applications create the same or similar files over and over, for example for regression testing, unit testing, or during a synthesis and build process. These systems and applications may also have ineffective data deduplication.

It is within this context that the embodiments arise.

SUMMARY

In some embodiments a method for extending data lifetime for reference in deduplication is provided. The method includes determining that a quantity of user data has at least a threshold amount of data that is re-created in a storage system. The method includes protecting at least portions of the quantity of user data from erasure by garbage collection in the storage system during a predetermined time interval, wherein the protected at least portions are available for data deduplication of further user data in the storage system during the predetermined time interval.

In some embodiments, a deduplication method is provided. The method includes identifying user data having at least a threshold amount of data that is re-created, by one or more applications and writing an indicator to metadata associated with the identified user data, wherein the indicator establishes a time interval of erasure immunity. The method includes preventing at least portions of the user data from being erased during garbage collection, during the time interval in accordance with the indicator in metadata, wherein the at least portions of the identified user data are kept available during the time interval of erasure immunity as reference data for deduplication of further data. Erasure immunity refers to protecting files or blocks from erasure or deletion during garbage collection processes. That is, the files or blocks having erasure immunity are not erased or deleted as the designated files or blocks are protected through a flag setting, or some other suitable mechanism, from deletion during the garbage collection process. In some embodiments the method is embodied as instructions stored on a computer readable medium.

In some embodiments, a storage system, with deduplication is provided. The system includes storage memory and at least one processor of the storage system, configured to write an indicator to metadata of the storage system. The indicator protects at least portions of user data from erasure during garbage collection, for a time interval, responsive to the at least one processor identifying the user data as having at least a threshold amount of data that is re-created on a periodic basis, wherein the at least portions of the user data associated with the indicator are available during the time interval as reference for deduplication.

Other aspects and advantages of the embodiments will become apparent from the following detailed description taken in conjunction with the accompanying drawings which illustrate, by way of example, the principles of the described embodiments.

BRIEF DESCRIPTION OF THE DRAWINGS

The described embodiments and the advantages thereof may best be understood by reference to the following description taken in conjunction with the accompanying drawings. These drawings in no way limit any changes in form and detail that may be made to the described embodiments by one skilled in the art without departing from the spirit and scope of the described embodiments.

FIG. 1 is a perspective view of a storage cluster with multiple storage nodes and internal storage coupled to each storage node to provide network attached storage, in accordance with some embodiments.

FIG. 2 is a block diagram showing an interconnect switch coupling multiple storage nodes in accordance with some embodiments.

FIG. 3 is a multiple level block diagram, showing contents of a storage node and contents of one of the non-volatile solid state storage units in accordance with some embodiments.

FIG. 4 is a storage system action diagram depicting deduplication of data from files, and garbage collection with specific data protected by erasure immunity, in accordance with some embodiments.

FIG. 5 depicts a histogram or other data structure that shows repeated data in files and is suitable for identifying specific data to be protected during garbage collection, per the operation shown in FIG. 4 in accordance with some embodiments.

FIG. 6 depicts a metadata table that indicates erasure immunity for specified files and is suitable for identifying specific data to be protected during garbage collection, per the operation shown in FIG. 4 in accordance with some embodiments.

FIG. 7 is a flow diagram of a method for extending data lifetime for reference in deduplication, which can be practiced using embodiments of storage nodes, storage units and storage clusters as shown in FIGS. 1-3, and embodiments of the system of FIGS. 4-6 in accordance with some embodiments.

FIG. 8 is an illustration showing an exemplary computing device which may implement the embodiments described herein.

DETAILED DESCRIPTION

The embodiments below describe a storage cluster that stores user data, such as data originating from one or more users or client systems or other sources external to the storage cluster. Some embodiments of the storage clusters and storage systems are suitable for improvements to deduplication and garbage collection, as described further below. The storage cluster distributes user data across storage nodes housed within a chassis, using erasure coding and redundant copies of metadata. Erasure coding refers to a method of data protection or reconstruction in which data is stored across a set of different locations, such as disks, storage nodes or geographic locations. Flash memory is one type of solid-state memory that may be integrated with the embodiments, although the embodiments may be extended to other types of solid-state memory or other storage medium, including non-solid state memory. Control of storage locations and workloads are distributed across the storage locations in a clustered peer-to-peer system. Tasks such as mediating communications between the various storage nodes, detecting when a storage node has become unavailable, and balancing I/Os (inputs and outputs) across the various storage nodes, are all handled on a distributed basis. Data is laid out or distributed across multiple storage nodes in data fragments or stripes that support data recovery in some embodiments. Ownership of data can be reassigned within a cluster, independent of input and output patterns. This architecture described in more detail below allows a storage node in the cluster to fail, with the system remaining operational, since the data can be reconstructed from other storage nodes and thus remain available for input and output operations. In various embodiments, a storage node may be referred to as a cluster node, a blade, or a server.

The storage cluster is contained within a chassis, i.e., an enclosure housing one or more storage nodes. A mechanism to provide power to each storage node, such as a power distribution bus, and a communication mechanism, such as a communication bus that enables communication between the storage nodes are included within the chassis. The storage cluster can run as an independent system in one location according to some embodiments. In one embodiment, a chassis contains at least two instances of both the power distribution and the communication bus which may be enabled or disabled independently. The internal communication bus may be an Ethernet bus, however, other technologies such as Peripheral Component Interconnect (PCI) Express, InfiniBand, and others, are equally suitable. The chassis provides a port for an external communication bus for enabling communication between multiple chassis, directly or through a switch, and with client systems. The external communication may use a technology such as Ethernet, InfiniBand, Fibre Channel, etc. In some embodiments, the external communication bus uses different communication bus technologies for inter-chassis and client communication. If a switch is deployed within or between chassis, the switch may act as a translation between multiple protocols or technologies. When multiple chassis are connected to define a storage cluster, the storage cluster may be accessed by a client using either proprietary interfaces or standard interfaces such as network file system (NFS), common internet file system (CIFS), small computer system interface (SCSI) or hypertext transfer protocol (HTTP). Translation from the client protocol may occur at the switch, chassis external communication bus or within each storage node.

Each storage node may be one or more storage servers and each storage server is connected to one or more non-volatile solid state memory units, which may be referred to as storage units. One embodiment includes a single storage server in each storage node and between one to eight non-volatile solid state memory units, however this one example is not meant to be limiting. The storage server may include a processor, dynamic random access memory (DRAM) and interfaces for the internal communication bus and power distribution for each of the power buses. Inside the storage node, the interfaces and storage unit share a communication bus, e.g., PCI Express, in some embodiments. The non-volatile solid state memory units may directly access the internal communication bus interface through a storage node communication bus, or request the storage node to access the bus interface. The non-volatile solid state memory unit contains an embedded central processing unit (CPU), solid state storage controller, and a quantity of solid state mass storage, e.g., between 2-32 terabytes (TB) in some embodiments. An embedded volatile storage medium, such as DRAM, and an energy reserve apparatus are included in the non-volatile solid state memory unit. In some embodiments, the energy reserve apparatus is a capacitor, super-capacitor, or battery that enables transferring a subset of DRAM contents to a stable storage medium in the case of power loss. In some embodiments, the non-volatile solid state memory unit is constructed with a storage class memory, such as phase change or magnetoresistive random access memory (MRAM) that substitutes for DRAM and enables a reduced power hold-up apparatus.

One of many features of the storage nodes and non-volatile solid state storage is the ability to proactively rebuild data in a storage cluster. The storage nodes and non-volatile solid state storage can determine when a storage node or non-volatile solid state storage in the storage cluster is unreachable, independent of whether there is an attempt to read data involving that storage node or non-volatile solid state storage. The storage nodes and non-volatile solid state storage then cooperate to recover and rebuild the data in at least partially new locations. This constitutes a proactive rebuild, in that the system rebuilds data without waiting until the data is needed for a read access initiated from a client system employing the storage cluster. These and further details of the storage memory and operation thereof are discussed below.

FIG. 1 is a perspective view of a storage cluster 160, with multiple storage nodes 150 and internal solid-state memory coupled to each storage node to provide network attached storage or storage area network, in accordance with some embodiments. A network attached storage, storage area network, or a storage cluster, or other storage memory, could include one or more storage clusters 160, each having one or more storage nodes 150, in a flexible and reconfigurable arrangement of both the physical components and the amount of storage memory provided thereby. The storage cluster 160 is designed to fit in a rack, and one or more racks can be set up and populated as desired for the storage memory. The storage cluster 160 has a chassis 138 having multiple slots 142. It should be appreciated that chassis 138 may be referred to as a housing, enclosure, or rack unit. In one embodiment, the chassis 138 has fourteen slots 142, although other numbers of slots are readily devised. For example, some embodiments have four slots, eight slots, sixteen slots, thirty-two slots, or other suitable number of slots. Each slot 142 can accommodate one storage node 150 in some embodiments. Chassis 138 includes flaps 148 that can be utilized to mount the chassis 138 on a rack. Fans 144 provide air circulation for cooling of the storage nodes 150 and components thereof, although other cooling components could be used, or an embodiment could be devised without cooling components. A switch fabric 146 couples storage nodes 150 within chassis 138 together and to a network for communication to the memory. In an embodiment depicted in FIG. 1, the slots 142 to the left of the switch fabric 146 and fans 144 are shown occupied by storage nodes 150, while the slots 142 to the right of the switch fabric 146 and fans 144 are empty and available for insertion of storage node 150 for illustrative purposes. This configuration is one example, and one or more storage nodes 150 could occupy the slots 142 in various further arrangements. The storage node arrangements need not be sequential or adjacent in some embodiments. Storage nodes 150 are hot pluggable, meaning that a storage node 150 can be inserted into a slot 142 in the chassis 138, or removed from a slot 142, without stopping or powering down the system. Upon insertion or removal of storage node 150 from slot 142, the system automatically reconfigures in order to recognize and adapt to the change. Reconfiguration, in some embodiments, includes restoring redundancy and/or rebalancing data or load.

Each storage node 150 can have multiple components. In the embodiment shown here, the storage node 150 includes a printed circuit board 158 populated by a CPU 156, i.e., processor, a memory 154 coupled to the CPU 156, and a non-volatile solid state storage 152 coupled to the CPU 156, although other mountings and/or components could be used in further embodiments. The memory 154 has instructions which are executed by the CPU 156 and/or data operated on by the CPU 156. As further explained below, the non-volatile solid state storage 152 includes flash or, in further embodiments, other types of solid-state memory.

Referring to FIG. 1, storage cluster 160 is scalable, meaning that storage capacity with non-uniform storage sizes is readily added, as described above. One or more storage nodes 150 can be plugged into or removed from each chassis and the storage cluster self-configures in some embodiments. Plug-in storage nodes 150, whether installed in a chassis as delivered or later added, can have different sizes. For example, in one embodiment a storage node 150 can have any multiple of 4 TB, e.g., 8 TB, 12 TB, 16 TB, 32 TB, etc. In further embodiments, a storage node 150 could have any multiple of other storage amounts or capacities. Storage capacity of each storage node 150 is broadcast, and influences decisions of how to stripe the data. For maximum storage efficiency, an embodiment can self-configure as wide as possible in the stripe, subject to a predetermined requirement of continued operation with loss of up to one, or up to two, non-volatile solid state storage units 152 or storage nodes 150 within the chassis.

FIG. 2 is a block diagram showing a communications interconnect 170 and power distribution bus 172 coupling multiple storage nodes 150. Referring back to FIG. 1, the communications interconnect 170 can be included in or implemented with the switch fabric 146 in some embodiments. Where multiple storage clusters 160 occupy a rack, the communications interconnect 170 can be included in or implemented with a top of rack switch, in some embodiments. As illustrated in FIG. 2, storage cluster 160 is enclosed within a single chassis 138. External port 176 is coupled to storage nodes 150 through communications interconnect 170, while external port 174 is coupled directly to a storage node. External power port 178 is coupled to power distribution bus 172. Storage nodes 150 may include varying amounts and differing capacities of non-volatile solid state storage 152 as described with reference to FIG. 1. In addition, one or more storage nodes 150 may be a compute only storage node as illustrated in FIG. 2. Authorities 168 are implemented on the non-volatile solid state storages 152, for example as lists or other data structures stored in memory. In some embodiments the authorities are stored within the non-volatile solid state storage 152 and supported by software executing on a controller or other processor of the non-volatile solid state storage 152. In a further embodiment, authorities 168 are implemented on the storage nodes 150, for example as lists or other data structures stored in the memory 154 and supported by software executing on the CPU 156 of the storage node 150. Authorities 168 control how and where data is stored in the non-volatile solid state storages 152 in some embodiments. This control assists in determining which type of erasure coding scheme is applied to the data, and which storage nodes 150 have which portions of the data. Each authority 168 may be assigned to a non-volatile solid state storage 152. Each authority may control a range of inode numbers, segment numbers, or other data identifiers which are assigned to data by a file system, by the storage nodes 150, or by the non-volatile solid state storage 152, in various embodiments.

Every piece of data, and every piece of metadata, has redundancy in the system in some embodiments. In addition, every piece of data and every piece of metadata has an owner, which may be referred to as an authority. If that authority is unreachable, for example through failure of a storage node, there is a plan of succession for how to find that data or that metadata. In various embodiments, there are redundant copies of authorities 168. Authorities 168 have a relationship to storage nodes 150 and non-volatile solid state storage 152 in some embodiments. Each authority 168, covering a range of data segment numbers or other identifiers of the data, may be assigned to a specific non-volatile solid state storage 152. In some embodiments the authorities 168 for all of such ranges are distributed over the non-volatile solid state storages 152 of a storage cluster. Each storage node 150 has a network port that provides access to the non-volatile solid state storage(s) 152 of that storage node 150. Data can be stored in a segment, which is associated with a segment number and that segment number is an indirection for a configuration of a RAID (redundant array of independent disks) stripe in some embodiments. The assignment and use of the authorities 168 thus establishes an indirection to data. Indirection may be referred to as the ability to refer to data indirectly, in this case via an authority 168, in accordance with some embodiments. A segment identifies a set of non-volatile solid state storage 152 and a local identifier into the set of non-volatile solid state storage 152 that may contain data. In some embodiments, the local identifier is an offset into the device and may be reused sequentially by multiple segments. In other embodiments the local identifier is unique for a specific segment and never reused. The offsets in the non-volatile solid state storage 152 are applied to locating data for writing to or reading from the non-volatile solid state storage 152 (in the form of a RAID stripe). Data is striped across multiple units of non-volatile solid state storage 152, which may include or be different from the non-volatile solid state storage 152 having the authority 168 for a particular data segment.

If there is a change in where a particular segment of data is located, e.g., during a data move or a data reconstruction, the authority 168 for that data segment should be consulted, at that non-volatile solid state storage 152 or storage node 150 having that authority 168. In order to locate a particular piece of data, embodiments calculate a hash value for a data segment or apply an inode number or a data segment number. The output of this operation points to a non-volatile solid state storage 152 having the authority 168 for that particular piece of data. In some embodiments there are two stages to this operation. The first stage maps an entity identifier (ID), e.g., a segment number, inode number, or directory number to an authority identifier. This mapping may include a calculation such as a hash or a bit mask. The second stage is mapping the authority identifier to a particular non-volatile solid state storage 152, which may be done through an explicit mapping. The operation is repeatable, so that when the calculation is performed, the result of the calculation repeatably and reliably points to a particular non-volatile solid state storage 152 having that authority 168. The operation may include the set of reachable storage nodes as input. If the set of reachable non-volatile solid state storage units changes the optimal set changes. In some embodiments, the persisted value is the current assignment (which is always true) and the calculated value is the target assignment the cluster will attempt to reconfigure towards. This calculation may be used to determine the optimal non-volatile solid state storage 152 for an authority in the presence of a set of non-volatile solid state storage 152 that are reachable and constitute the same cluster. The calculation also determines an ordered set of peer non-volatile solid state storage 152 that will also record the authority to non-volatile solid state storage mapping so that the authority may be determined even if the assigned non-volatile solid state storage is unreachable. A duplicate or substitute authority 168 may be consulted if a specific authority 168 is unavailable in some embodiments.

With reference to FIGS. 1 and 2, two of the many tasks of the CPU 156 on a storage node 150 are to break up write data, and reassemble read data. When the system has determined that data is to be written, the authority 168 for that data is located as above. When the segment ID for data is already determined the request to write is forwarded to the non-volatile solid state storage 152 currently determined to be the host of the authority 168 determined from the segment. The host CPU 156 of the storage node 150, on which the non-volatile solid state storage 152 and corresponding authority 168 reside, then breaks up or shards the data and transmits the data out to various non-volatile solid state storage 152. The transmitted data is written as a data stripe in accordance with an erasure coding scheme. In some embodiments, data is requested to be pulled, and in other embodiments, data is pushed. In reverse, when data is read, the authority 168 for the segment ID containing the data is located as described above. The host CPU 156 of the storage node 150 on which the non-volatile solid state storage 152 and corresponding authority 168 reside requests the data from the non-volatile solid state storage and corresponding storage nodes pointed to by the authority. In some embodiments the data is read from flash storage as a data stripe. The host CPU 156 of storage node 150 then reassembles the read data, correcting any errors (if present) according to the appropriate erasure coding scheme, and forwards the reassembled data to the network. In further embodiments, some or all of these tasks can be handled in the non-volatile solid state storage 152. In some embodiments, the segment host requests the data be sent to storage node 150 by requesting pages from storage and then sending the data to the storage node making the original request.

In some systems, for example in UNIX-style file systems, data is handled with an index node or inode, which specifies a data structure that represents an object in a file system. The object could be a file or a directory, for example. Metadata may accompany the object, as attributes such as permission data and a creation timestamp, among other attributes. A segment number could be assigned to all or a portion of such an object in a file system. In other systems, data segments are handled with a segment number assigned elsewhere. For purposes of discussion, the unit of distribution is an entity, and an entity can be a file, a directory or a segment. That is, entities are units of data or metadata stored by a storage system. Entities are grouped into sets called authorities. Each authority has an authority owner, which is a storage node that has the exclusive right to update the entities in the authority. In other words, a storage node contains the authority, and that the authority, in turn, contains entities.

A segment is a logical container of data in accordance with some embodiments. A segment is an address space between medium address space and physical flash locations, i.e., the data segment number, are in this address space. Segments may also contain meta-data, which enable data redundancy to be restored (rewritten to different flash locations or devices) without the involvement of higher level software. In one embodiment, an internal format of a segment contains client data and medium mappings to determine the position of that data. Each data segment is protected, e.g., from memory and other failures, by breaking the segment into a number of data and parity shards, where applicable. The data and parity shards are distributed, i.e., striped, across non-volatile solid state storage 152 coupled to the host CPUs 156 (See FIG. 5) in accordance with an erasure coding scheme. Usage of the term segments refers to the container and its place in the address space of segments in some embodiments. Usage of the term stripe refers to the same set of shards as a segment and includes how the shards are distributed along with redundancy or parity information in accordance with some embodiments.

A series of address-space transformations takes place across an entire storage system. At the top are the directory entries (file names) which link to an inode. Inodes point into medium address space, where data is logically stored. Medium addresses may be mapped through a series of indirect mediums to spread the load of large files, or implement data services like deduplication or snapshots. Medium addresses may be mapped through a series of indirect mediums to spread the load of large files, or implement data services like deduplication or snapshots. Segment addresses are then translated into physical flash locations. Physical flash locations have an address range bounded by the amount of flash in the system in accordance with some embodiments. Medium addresses and segment addresses are logical containers, and in some embodiments use a 128 bit or larger identifier so as to be practically infinite, with a likelihood of reuse calculated as longer than the expected life of the system. Addresses from logical containers are allocated in a hierarchical fashion in some embodiments. Initially, each non-volatile solid state storage 152 may be assigned a range of address space. Within this assigned range, the non-volatile solid state storage 152 is able to allocate addresses without synchronization with other non-volatile solid state storage 152.

Data and metadata is stored by a set of underlying storage layouts that are optimized for varying workload patterns and storage devices. These layouts incorporate multiple redundancy schemes, compression formats and index algorithms. Some of these layouts store information about authorities and authority masters, while others store file metadata and file data. The redundancy schemes include error correction codes that tolerate corrupted bits within a single storage device (such as a NAND flash chip), erasure codes that tolerate the failure of multiple storage nodes, and replication schemes that tolerate data center or regional failures. In some embodiments, low density parity check (LDPC) code is used within a single storage unit. Reed-Solomon encoding is used within a storage cluster, and mirroring is used within a storage grid in some embodiments. Metadata may be stored using an ordered log structured index (such as a Log Structured Merge Tree), and large data may not be stored in a log structured layout.

In order to maintain consistency across multiple copies of an entity, the storage nodes agree implicitly on two things through calculations: (1) the authority that contains the entity, and (2) the storage node that contains the authority. The assignment of entities to authorities can be done by pseudorandomly assigning entities to authorities, by splitting entities into ranges based upon an externally produced key, or by placing a single entity into each authority. Examples of pseudorandom schemes are linear hashing and the Replication Under Scalable Hashing (RUSH) family of hashes, including Controlled Replication Under Scalable Hashing (CRUSH). In some embodiments, pseudo-random assignment is utilized only for assigning authorities to nodes because the set of nodes can change. The set of authorities cannot change so any subjective function may be applied in these embodiments. Some placement schemes automatically place authorities on storage nodes, while other placement schemes rely on an explicit mapping of authorities to storage nodes. In some embodiments, a pseudorandom scheme is utilized to map from each authority to a set of candidate authority owners. A pseudorandom data distribution function related to CRUSH may assign authorities to storage nodes and create a list of where the authorities are assigned. Each storage node has a copy of the pseudorandom data distribution function, and can arrive at the same calculation for distributing, and later finding or locating an authority. Each of the pseudorandom schemes requires the reachable set of storage nodes as input in some embodiments in order to conclude the same target nodes. Once an entity has been placed in an authority, the entity may be stored on physical devices so that no expected failure will lead to unexpected data loss. In some embodiments, rebalancing algorithms attempt to store the copies of all entities within an authority in the same layout and on the same set of machines.

Examples of expected failures include device failures, stolen machines, datacenter fires, and regional disasters, such as nuclear or geological events. Different failures lead to different levels of acceptable data loss. In some embodiments, a stolen storage node impacts neither the security nor the reliability of the system, while depending on system configuration, a regional event could lead to no loss of data, a few seconds or minutes of lost updates, or even complete data loss.

In the embodiments, the placement of data for storage redundancy is independent of the placement of authorities for data consistency. In some embodiments, storage nodes that contain authorities do not contain any persistent storage. Instead, the storage nodes are connected to non-volatile solid state storage units that do not contain authorities. The communications interconnect between storage nodes and non-volatile solid state storage units consists of multiple communication technologies and has non-uniform performance and fault tolerance characteristics. In some embodiments, as mentioned above, non-volatile solid state storage units are connected to storage nodes via PCI express, storage nodes are connected together within a single chassis using Ethernet backplane, and chassis are connected together to form a storage cluster. Storage clusters are connected to clients using Ethernet or fiber channel in some embodiments. If multiple storage clusters are configured into a storage grid, the multiple storage clusters are connected using the Internet or other long-distance networking links, such as a “metro scale” link or private link that does not traverse the internet.

Authority owners have the exclusive right to modify entities, to migrate entities from one non-volatile solid state storage unit to another non-volatile solid state storage unit, and to add and remove copies of entities. This allows for maintaining the redundancy of the underlying data. When an authority owner fails, is going to be decommissioned, or is overloaded, the authority is transferred to a new storage node. Transient failures make it non-trivial to ensure that all non-faulty machines agree upon the new authority location. The ambiguity that arises due to transient failures can be achieved automatically by a consensus protocol such as Paxos, hot-warm failover schemes, via manual intervention by a remote system administrator, or by a local hardware administrator (such as by physically removing the failed machine from the cluster, or pressing a button on the failed machine). In some embodiments, a consensus protocol is used, and failover is automatic. If too many failures or replication events occur in too short a time period, the system goes into a self-preservation mode and halts replication and data movement activities until an administrator intervenes in accordance with some embodiments.

As authorities are transferred between storage nodes and authority owners update entities in their authorities, the system transfers messages between the storage nodes and non-volatile solid state storage units. With regard to persistent messages, messages that have different purposes are of different types. Depending on the type of the message, the system maintains different ordering and durability guarantees. As the persistent messages are being processed, the messages are temporarily stored in multiple durable and non-durable storage hardware technologies. In some embodiments, messages are stored in RAM, NVRAM and on NAND flash devices, and a variety of protocols are used in order to make efficient use of each storage medium. Latency-sensitive client requests may be persisted in replicated NVRAM, and then later NAND, while background rebalancing operations are persisted directly to NAND.

Persistent messages are persistently stored prior to being replicated. This allows the system to continue to serve client requests despite failures and component replacement. Although many hardware components contain unique identifiers that are visible to system administrators, manufacturer, hardware supply chain and ongoing monitoring quality control infrastructure, applications running on top of the infrastructure address virtualize addresses. These virtualized addresses do not change over the lifetime of the storage system, regardless of component failures and replacements. This allows each component of the storage system to be replaced over time without reconfiguration or disruptions of client request processing.

In some embodiments, the virtualized addresses are stored with sufficient redundancy. A continuous monitoring system correlates hardware and software status and the hardware identifiers. This allows detection and prediction of failures due to faulty components and manufacturing details. The monitoring system also enables the proactive transfer of authorities and entities away from impacted devices before failure occurs by removing the component from the critical path in some embodiments.

FIG. 3 is a multiple level block diagram, showing contents of a storage node 150 and contents of a non-volatile solid state storage 152 of the storage node 150. Data is communicated to and from the storage node 150 by a network interface controller (NIC) 202 in some embodiments. Each storage node 150 has a CPU 156, and one or more non-volatile solid state storage 152, as discussed above. Moving down one level in FIG. 3, each non-volatile solid state storage 152 has a relatively fast non-volatile solid state memory, such as nonvolatile random access memory (NVRAM) 204, and flash memory 206. In some embodiments, NVRAM 204 may be a component that does not require program/erase cycles (DRAM, MRAM, PCM), and can be a memory that can support being written vastly more often than the memory is read from. Moving down another level in FIG. 3, the NVRAM 204 is implemented in one embodiment as high speed volatile memory, such as dynamic random access memory (DRAM) 216, backed up by energy reserve 218. Energy reserve 218 provides sufficient electrical power to keep the DRAM 216 powered long enough for contents to be transferred to the flash memory 206 in the event of power failure. In some embodiments, energy reserve 218 is a capacitor, super-capacitor, battery, or other device, that supplies a suitable supply of energy sufficient to enable the transfer of the contents of DRAM 216 to a stable storage medium in the case of power loss. The flash memory 206 is implemented as multiple flash dies 222, which may be referred to as packages of flash dies 222 or an array of flash dies 222. It should be appreciated that the flash dies 222 could be packaged in any number of ways, with a single die per package, multiple dies per package (i.e. multichip packages), in hybrid packages, as bare dies on a printed circuit board or other substrate, as encapsulated dies, etc. In the embodiment shown, the non-volatile solid state storage 152 has a controller 212 or other processor, and an input output (I/O) port 210 coupled to the controller 212. I/O port 210 is coupled to the CPU 156 and/or the network interface controller 202 of the flash storage node 150. Flash input output (I/O) port 220 is coupled to the flash dies 222, and a direct memory access unit (DMA) 214 is coupled to the controller 212, the DRAM 216 and the flash dies 222. In the embodiment shown, the I/O port 210, controller 212, DMA unit 214 and flash I/O port 220 are implemented on a programmable logic device (PLD) 208, e.g., a field programmable gate array (FPGA). In this embodiment, each flash die 222 has pages, organized as sixteen kB (kilobyte) pages 224, and a register 226 through which data can be written to or read from the flash die 222. In further embodiments, other types of solid-state memory are used in place of, or in addition to flash memory illustrated within flash die 222.

Storage clusters 160, in various embodiments as disclosed herein, can be contrasted with storage arrays in general. The storage nodes 150 are part of a collection that creates the storage cluster 160. Each storage node 150 owns a slice of data and computing required to provide the data. Multiple storage nodes 150 cooperate to store and retrieve the data. Storage memory or storage devices, as used in storage arrays in general, are less involved with processing and manipulating the data. Storage memory or storage devices in a storage array receive commands to read, write, or erase data. The storage memory or storage devices in a storage array are not aware of a larger system in which they are embedded, or what the data means. Storage memory or storage devices in storage arrays can include various types of storage memory, such as RAM, solid state drives, hard disk drives, etc. The storage units 152 described herein have multiple interfaces active simultaneously and serving multiple purposes. In some embodiments, some of the functionality of a storage node 150 is shifted into a storage unit 152, transforming the storage unit 152 into a combination of storage unit 152 and storage node 150. Placing computing (relative to storage data) into the storage unit 152 places this computing closer to the data itself. The various system embodiments have a hierarchy of storage node layers with different capabilities. By contrast, in a storage array, a controller owns and knows everything about all of the data that the controller manages in a shelf or storage devices. In a storage cluster 160, as described herein, multiple controllers in multiple storage units 152 and/or storage nodes 150 cooperate in various ways (e.g., for erasure coding, data sharding, metadata communication and redundancy, storage capacity expansion or contraction, data recovery, and so on).

FIG. 4 is a storage system action diagram depicting deduplication 414 of data from files 410, and garbage collection 422 with specific data protected by erasure immunity, in an embodiment of the present disclosure. As mentioned above, erasure immunity refers to protecting files or blocks from erasure or deletion during garbage collection processes. That is, the files or blocks having erasure immunity are not erased or deleted as the designated files or blocks are protected through a flag setting, or some other suitable mechanism, from deletion during the garbage collection process. Deduplication 414 reduces or eliminates redundant or duplicate data, and can be practiced inline (also known as on-the-fly) or post-process. Examples of inline deduplication include deduplication during data creation and data injection (e.g., to a storage system), and deduplication during a backup run. Examples of post-process deduplication include deduplication after data creation or data injection, and deduplication after a backup run. Both types of deduplication may be integrated into the mechanisms described herein. A brief overview of deduplication 414 is given below, followed by description of improvements to deduplication 414 in accordance with present embodiments. It should be appreciated that other deduplication scenarios may benefit from the improvements described herein. In one scenario, one or more applications 408, operating under a file system 402, create files 410. The files 410 are sent for deduplication 414. Deduplication 414 could be inline deduplication of the files 410 as they are created, or as they are sent for storage in a storage cluster 160. In some embodiments the files 410 could be stored in a storage cluster 160, and then subjected to post-process deduplication. The deduplication 414 process typically performs a hash function 416 on each data portion 412, and forms a fingerprint of the data portion 412. The fingerprint is checked against fingerprints 418 of (i.e., that reference) various data portions in a storage 420. If the fingerprint of the data portion 412 matches one of the fingerprints 418, the data portion 412 is discarded (shown symbolically with an arrow pointing towards a trashcan 432). If no match is found for the fingerprint of the data portion 412, the data portion 412 is sent to the storage 420. Various algorithms for maintenance of fingerprints 418, and decisions on how, or how deep, to search for fingerprint matches, are commonly available and can be integrated with the embodiments described. It should be appreciated that data portion 412 may be a file based data portion, object based date portion, or a block based data portion.

A deduplication 414 process references data through multiple techniques or instances. One instance is during the comparison process, in which the deduplication 414 references data using the fingerprints 418 to identify a match to a fingerprint of a data portion 412 under consideration for storage or discarding. A second instance a deduplication 414 process references data is in storage of file links. A deduplicated file is represented as a set of references to data portions and stored as a series of links to data portions. These links can reference unique data portions 412 in the storage 420, or data portions 412 that have multiple references as a result of matching data portions 412 that were discarded. A third instance a deduplication 414 process references data is when a file is reconstructed from the series of links, and the deduplication 414 process locates the referenced data portions 412 and reassembles a file, e.g., in a file restoration process from a backup image. In some embodiments, reference data as used herein may refer to any of the data, i.e., fingerprints, file links, reassembled files, objects, etc., used in the deduplication techniques or instances mentioned in this paragraph.

Continuing with the scenario of FIG. 4, an application 408 uses the file create 404 process of the file system 402 in order to create a file 410, and uses the file delete 406 process of the file system 402 in order to delete a file 410. In a storage system, such as the storage cluster 160 described with reference to FIGS. 1-3, a garbage collection 422 process identifies memory locations in the storage 420, for which the file system 402 says the data no longer exists. For flash memory, the garbage collection 422 would erase blocks of flash, under such circumstances (except as described below, per erasure immunity). In other words, if a file has been deleted, it is normally acceptable for the garbage collection 422 process to erase corresponding flash memory blocks, or otherwise arrange for reuse of memory corresponding to the no longer existing data. That is, since the file or block no longer exists and there are no other references to that data by other files or blocks and thus it is a candidate for immediate garbage collection. The embodiments exploit temporal locality of recreating that data to prevent garbage collection from reclaiming the data blocks, reducing flash wear and extending the lifetime of the flash media. It should be appreciated that the particulars of garbage collection 422 are specific to an architecture, a storage memory type, and other system aspects. In addition, while the embodiments have provided examples referring to files and file systems, the embodiments may be extended to object or block based systems also.

Garbage collection 422 can be problematic for deduplication 414, in systems where the same or similar files are created multiple times. This can happen in systems built for regression testing, unit testing, or synthesis and build processes. In these systems, files, objects, or blocks are created by certain applications 408 on a regular or irregular basis and many such files, objects, or blocks have a large amount of data that is identical to data in previously seen files, objects, or blocks, i.e., the data is re-created. For example, temporary files, object files, simulation files and other files, objects, or blocks associated with the above-described uses can be created on a weekly, daily, or even multiple times daily basis, and many of these files, objects, or blocks have data that is repeated from the previous run(s), i.e., re-created data. In some embodiments with respect to block based systems, logical block addresses may be repeatedly used in the system. If each of these runs is deduplicated, and garbage collection 422 is applied, the same data gets erased, rewritten, erased and rewritten many times over the course of months or a year or some other time period. This situation is not only inefficient from a standpoint of system activity and time, but may result in rapid or premature wear of flash memory or other storage memory types with wear limitations.

Still referring to FIG. 4, improvements to the garbage collection 422 process include identifying and protecting specific data, by granting erasure immunity for an erasure immunity time interval. The system is observed (depicted symbolically as a funnel 430 collecting observations about the applications 408 and the file system 402) by a behavior analysis module 424. The behavior analysis module 424 could be implemented as software, firmware, hardware, or combinations thereof, for example on one or more storage nodes 150, or on one or more compute-only nodes, in the storage cluster 160. The behavior analysis module 424 produces a histogram 426 or other data structure, which tracks file and data behavior as will be further described with reference to FIG. 5. File names or file types that are repeated, or that have greater than a specified amount of repeated previously seen data, are detected by the behavior analysis module 424, for example through analysis of the histogram 426 or other data structure. The behavior analysis module 424 then writes to a metadata table 428, as will be further described with reference to FIG. 6. The metadata table 428 indicates which files have erasure immunity and should be protected during garbage collection 422. Files with large amounts of re-created data, i.e., new files in which data from previously seen files is repeated in the new files, are candidates for erasure immunity during garbage collection 422. When garbage collection 422 is performed, files with erasure immunity are not erased, even if the file system 402 indicates these files have been deleted and are no longer in existence. In variations, erasure immunity could be granted for blocks, or other amounts of data. The files, blocks or other portions of data that are granted erasure immunity are kept available during the erasure immunity time interval as reference data for deduplication of further data.

FIG. 5 depicts a histogram 426 or other data structure that shows repeated data in files 410 and is suitable for identifying specific data to be protected during garbage collection 422, per the operation shown in FIG. 4. Format for such a data structure is readily devised, and need not be identical to the representation in FIG. 5. The application(s) 408 are shown creating files 410 on a repeated basis, for purposes of illustration of the contents of the histogram 426. In one embodiment, file names 502 are listed in the histogram 426. For each file name 502, a first indication 504 shows the amount of repeated (i.e., recurring, re-created) data in the file. That is, the contents of the file are compared to previously seen files, and the amount of re-created or repeated data in the file is noted in the histogram 426. This comparison could be made with use of the hash function 416, the fingerprints 418, or other comparison mechanism or utility. For each file name 502, a second indication 506 illustrates the frequency of repetition of the file. For example, the first entry in the histogram 426 shows a file with a file name 502 “FILE01.TMP”. This file has about 50% repeated (i.e., re-created) data, and the file is created on a frequency of repetition of every few hours. Although shown in graphical format, the first and second indications 504, 506 could be in numerical format in some embodiments. Example file types that could have re-created data include temporary files (.TMP), object files (.OBJ) and simulation files (.SIM), among others. The value of the threshold, for the amount of data that is re-created or repeated, could be adjusted based on the histogram 426, or based on utilization ratios of storage memory, i.e., utilization of storage capacity of the storage system.

FIG. 6 depicts a metadata table 428 that indicates erasure immunity 602 for specified files and is suitable for identifying specific data to be protected during garbage collection, per the operation shown in FIG. 4. For example, the behavior analysis module 424 could grant erasure immunity 602, e.g., as shown with the entry “yes” in the metadata table 428, to files having greater than 50% repeated data (or meeting some other threshold). In various embodiments, the metadata table 428 could be a separate table or could be integrated into a fingerprint table, e.g., with fingerprints 418 as shown in FIG. 4. In one embodiment, fingerprints 418 associated with a file that is granted erasure immunity also have erasure immunity. An aging parameter 604 is established in the metadata table 428, in some embodiments. For example, the behavior analysis module 424 could establish a lower aging parameter 604 for files found to have a rapid frequency of repetition (e.g., in hours or days), and a higher aging parameter 604 for files found to have a lower frequency of repetition (e.g., in days or weeks) and thus in need of a longer extended lifetime or lifespan. The aging parameter 604 could be decremented (i.e., counted down) at regular time spans (e.g., once per hour, once per day, or once per week) in some embodiments, or with each garbage collection 422 cycle, or with each deduplication 414 cycle, in other embodiments. In this manner, the combination of the erasure immunity 602 and the aging parameter 604 establishes an extended lifetime for specified files 410, according to the file names 502. Alternative parameters to an aging parameter may be incorporated into the embodiments and these parameters may be combined with the aging parameter or utilized in place of the aging parameter. For example, a parameter such as a block size, object size or file size may be used as a tiebreaker to prioritize one block, object or file over another block, object or file where 2 blocks, objects or files have the same aging parameter. Thus, the embodiments are not limited to an aging parameter or a single parameter, as a combination of features that can include age, size, etc., may be integrated with the embodiments to prioritize or function as a tie breaker in some embodiments. The extended lifetime grants erasure immunity to a file during garbage collection 422, regardless of whether or not the file system 402 declares the file has been deleted. The extended lifetime is valid until the lifetime expires in some embodiments. In some embodiments, the extended lifetime can be renewed. For example, the behavior analysis module 424 could track file creation and deletion patterns, allowing extended lifetimes to expire after a specified number of dead cycles in which a file creation and deletion pattern ceases, but renew appropriate extended lifetimes if the file creation and deletion pattern resumes. The behavior analysis module 424 could have awareness of calendars (e.g., weekends, holidays, plant shutdowns) and apply this in determining extended lifetimes or expirations thereof. Thus, in various embodiments, depending upon sophistication of the algorithm, the time interval for erasure immunity of data could be a fixed time interval, or a variable one. In some embodiments, the erasure immunity time interval, whether fixed or variable, is adjusted based on the amount of storage capacity utilized. For example, as storage capacity utilization increases, the erasure immunity time interval could be decreased, so as not to overflow the storage capacity. For situations in which there is a relatively low storage capacity utilization, a longer erasure immunity time interval could be used. In some embodiments related to write rates, if the write rate is very low, then garbage collection is less likely to be activated, whereas relatively high write rates, even in low capacity results in a garbage collection mechanism that is more active and requires more management.

FIG. 7 is a flow diagram of a method for extending reference data lifetime in a deduplication mechanism, which can be practiced using embodiments of storage nodes, storage units and storage clusters as shown in FIGS. 1-3, and embodiments of the system of FIGS. 4-6. The method can be practiced by one or more processors, such as processors of storage nodes, storage units or compute nodes. In a decision action 702, it is determined whether user data has greater than a threshold amount of re-created data. As noted above, the user data may be any data from a client or source external to the storage system in some embodiments, which includes meta data. Re-created data refers to data that is repeated in files as described above. If the user data does not have greater than a threshold amount of re-created data, flow loops back to the decision action 702 (or could branch elsewhere for further processes). If the user data does have greater than a threshold amount of re-created data, flow proceeds to the action 704. In the action 704, files, blocks or portions of data that include greater than a threshold amount of re-created data are identified. These files, blocks or portions of data are granted erasure immunity, which is established in metadata, in an action 706. Each of these erasure immune files, blocks or portions of data are granted an erasure immunity time interval, which is also established in metadata, in an action 708. Regardless of whether the file system indicates a deleted file, a deleted block, or a deleted portion of data, erasure of the erasure immune files, blocks or portions of data is prevented during garbage collection, in an action 710. That is, there are no other copies of the data for that data to be garbage collected. The erasure immune files, blocks or portions of data are made available for reference during deduplication of further user data, in an action 712.

It should be appreciated that the methods described herein may be performed with a digital processing system, such as a conventional, general-purpose computer system. Special purpose computers, which are designed or programmed to perform only one function may be used in the alternative. FIG. 8 is an illustration showing an exemplary computing device which may implement the embodiments described herein. The computing device of FIG. 8 may be used to perform embodiments of the functionality for a storage node or a non-volatile solid state storage in accordance with some embodiments. The computing device includes a central processing unit (CPU) 801, which is coupled through a bus 805 to a memory 803, and mass storage device 807. Mass storage device 807 represents a persistent data storage device such as a disc drive, which may be local or remote in some embodiments. The mass storage device 807 could implement a backup storage, in some embodiments. Memory 803 may include read only memory, random access memory, etc. Applications resident on the computing device may be stored on or accessed via a computer readable medium such as memory 803 or mass storage device 807 in some embodiments. Applications may also be in the form of modulated electronic signals modulated accessed via a network modem or other network interface of the computing device. It should be appreciated that CPU 801 may be embodied in a general-purpose processor, a special purpose processor, or a specially programmed logic device in some embodiments.

Display 811 is in communication with CPU 801, memory 803, and mass storage device 807, through bus 805. Display 811 is configured to display any visualization tools or reports associated with the system described herein. Input/output device 809 is coupled to bus 805 in order to communicate information in command selections to CPU 801. It should be appreciated that data to and from external devices may be communicated through the input/output device 809. CPU 801 can be defined to execute the functionality described herein to enable the functionality described with reference to FIGS. 1-7. The code embodying this functionality may be stored within memory 803 or mass storage device 807 for execution by a processor such as CPU 801 in some embodiments. The operating system on the computing device may be MS-WINDOWS™, UNIX™, LINUX™, iOS™, CentOS™, Android™, Redhat Linux™, z/OS™, or other known operating systems. It should be appreciated that the embodiments described herein may be integrated with virtualized computing system also.

Detailed illustrative embodiments are disclosed herein. However, specific functional details disclosed herein are merely representative for purposes of describing embodiments. Embodiments may, however, be embodied in many alternate forms and should not be construed as limited to only the embodiments set forth herein.

It should be understood that although the terms first, second, etc. may be used herein to describe various steps or calculations, these steps or calculations should not be limited by these terms. These terms are only used to distinguish one step or calculation from another. For example, a first calculation could be termed a second calculation, and, similarly, a second step could be termed a first step, without departing from the scope of this disclosure. As used herein, the term “and/or” and the “/” symbol includes any and all combinations of one or more of the associated listed items.

As used herein, the singular forms “a”, “an” and “the” are intended to include the plural forms as well, unless the context clearly indicates otherwise. It will be further understood that the terms “comprises”, “comprising”, “includes”, and/or “including”, when used herein, specify the presence of stated features, integers, steps, operations, elements, and/or components, but do not preclude the presence or addition of one or more other features, integers, steps, operations, elements, components, and/or groups thereof. Therefore, the terminology used herein is for the purpose of describing particular embodiments only and is not intended to be limiting.

It should also be noted that in some alternative implementations, the functions/acts noted may occur out of the order noted in the figures. For example, two figures shown in succession may in fact be executed substantially concurrently or may sometimes be executed in the reverse order, depending upon the functionality/acts involved.

With the above embodiments in mind, it should be understood that the embodiments might employ various computer-implemented operations involving data stored in computer systems. These operations are those requiring physical manipulation of physical quantities. Usually, though not necessarily, these quantities take the form of electrical or magnetic signals capable of being stored, transferred, combined, compared, and otherwise manipulated. Further, the manipulations performed are often referred to in terms, such as producing, identifying, determining, or comparing. Any of the operations described herein that form part of the embodiments are useful machine operations. The embodiments also relate to a device or an apparatus for performing these operations. The apparatus can be specially constructed for the required purpose, or the apparatus can be a general-purpose computer selectively activated or configured by a computer program stored in the computer. In particular, various general-purpose machines can be used with computer programs written in accordance with the teachings herein, or it may be more convenient to construct a more specialized apparatus to perform the required operations.

A module, an application, a layer, an agent or other method-operable entity could be implemented as hardware, firmware, or a processor executing software, or combinations thereof. It should be appreciated that, where a software-based embodiment is disclosed herein, the software can be embodied in a physical machine such as a controller. For example, a controller could include a first module and a second module. A controller could be configured to perform various actions, e.g., of a method, an application, a layer or an agent.

The embodiments can also be embodied as computer readable code on a non-transitory computer readable medium. The computer readable medium is any data storage device that can store data, which can be thereafter read by a computer system. Examples of the computer readable medium include hard drives, network attached storage (NAS), storage area network, read-only memory, random-access memory, CD-ROMs, CD-Rs, CD-RWs, magnetic tapes, and other optical and non-optical data storage devices. The computer readable medium can also be distributed over a network coupled computer system so that the computer readable code is stored and executed in a distributed fashion. Embodiments described herein may be practiced with various computer system configurations including hand-held devices, tablets, microprocessor systems, microprocessor-based or programmable consumer electronics, minicomputers, mainframe computers and the like. The embodiments can also be practiced in distributed computing environments where tasks are performed by remote processing devices that are linked through a wire-based or wireless network.

Although the method operations were described in a specific order, it should be understood that other operations may be performed in between described operations, described operations may be adjusted so that they occur at slightly different times or the described operations may be distributed in a system which allows the occurrence of the processing operations at various intervals associated with the processing.

In various embodiments, one or more portions of the methods and mechanisms described herein may form part of a cloud-computing environment. In such embodiments, resources may be provided over the Internet as services according to one or more various models. Such models may include Infrastructure as a Service (IaaS), Platform as a Service (PaaS), and Software as a Service (SaaS). In IaaS, computer infrastructure is delivered as a service. In such a case, the computing equipment is generally owned and operated by the service provider. In the PaaS model, software tools and underlying equipment used by developers to develop software solutions may be provided as a service and hosted by the service provider. SaaS typically includes a service provider licensing software as a service on demand. The service provider may host the software, or may deploy the software to a customer for a given period of time. Numerous combinations of the above models are possible and are contemplated.

Various units, circuits, or other components may be described or claimed as “configured to” perform a task or tasks. In such contexts, the phrase “configured to” is used to connote structure by indicating that the units/circuits/components include structure (e.g., circuitry) that performs the task or tasks during operation. As such, the unit/circuit/component can be said to be configured to perform the task even when the specified unit/circuit/component is not currently operational (e.g., is not on). The units/circuits/components used with the “configured to” language include hardware—for example, circuits, memory storing program instructions executable to implement the operation, etc. Reciting that a unit/circuit/component is “configured to” perform one or more tasks is expressly intended not to invoke 35 U.S.C. 112, sixth paragraph, for that unit/circuit/component. Additionally, “configured to” can include generic structure (e.g., generic circuitry) that is manipulated by software and/or firmware (e.g., an FPGA or a general-purpose processor executing software) to operate in manner that is capable of performing the task(s) at issue. “Configured to” may also include adapting a manufacturing process (e.g., a semiconductor fabrication facility) to fabricate devices (e.g., integrated circuits) that are adapted to implement or perform one or more tasks.

The foregoing description, for the purpose of explanation, has been described with reference to specific embodiments. However, the illustrative discussions above are not intended to be exhaustive or to limit the invention to the precise forms disclosed. Many modifications and variations are possible in view of the above teachings. The embodiments were chosen and described in order to best explain the principles of the embodiments and its practical applications, to thereby enable others skilled in the art to best utilize the embodiments and various modifications as may be suited to the particular use contemplated. Accordingly, the present embodiments are to be considered as illustrative and not restrictive, and the invention is not to be limited to the details given herein, but may be modified within the scope and equivalents of the appended claims. 

What is claimed is:
 1. A method for extending data lifetime for reference in deduplication, comprising: monitoring repeated data in a storage system; indicating in metadata that at least portions of the repeated data are to have erasure immunity responsive to the monitoring; protecting the at least portions of the repeated data from erasure by garbage collection, during a predetermined time interval; and performing garbage collection except where the erasure immunity as indicated by the metadata prevents the erasure during the garbage collection.
 2. The method of claim 1, wherein the monitoring comprises: forming a histogram, over one or more sampling windows of time, of data of the system, the histogram indicating amounts of the data of the system having hash function results matching hash function results of another portion of the data during the one or more sampling windows of time.
 3. The method of claim 1, wherein the metadata includes an aging parameter for each of the at least portions of the repeated data, and further comprising: setting the aging parameter for one of the at least portions of the repeated data to a first value, responsive to determining the one of the at least portions matches a fingerprint result of another portion of data during a sampling window of time, wherein the first value indicates to not erase during garbage collection; and adjusting the aging parameter for a further one of the at least portions of the repeated data towards a second value, responsive to determining the further one of the at least portions has a fingerprint result unmatched by another portion of data during the sampling window of time, wherein the second value indicates to erase during garbage collection.
 4. The method of claim 1, further comprising: tracking file creation, file deletion, or frequency of re-creation of data, in a metadata table; and adjusting a time interval of erasure immunity, based on the tracking.
 5. The method of claim 1, further comprising: performing garbage collection, which includes erasing a plurality of fingerprints not matched in at least one deduplication operation, except where a fingerprint corresponds to one of the at least portions of the repeated data having erasure immunity according to the metadata.
 6. The method of claim 1, wherein the indicating is on a basis of a file, a file type, a block or a range of blocks, and wherein the threshold amount of data is one or more times as much as a data chunk corresponding to a fingerprint or a hash function result.
 7. The method of claim 1, further comprising: writing to a table in the metadata in the storage system, regarding how often incoming data to the storage system repeats a same data or includes greater than the threshold amount of data that is repeated, wherein the indicating is based on contents of the table.
 8. A tangible, non-transitory, computer-readable media having instructions thereupon which, when executed by a processor in a storage system, cause the processor to perform a method comprising: monitoring repeated data in a storage system; indicating in metadata that at least portions of the repeated data are to have erasure immunity responsive to the monitoring; protecting the at least portions of the repeated data from erasure by garbage collection, during a predetermined time interval; and performing garbage collection except where the erasure immunity as indicated by the metadata prevents the erasure during the garbage collection.
 9. The computer-readable media of claim 8, wherein the method further comprises: generating a histogram of files or blocks, the histogram tracking repeated data over one or more sampling windows of time; and adjusting a value of a threshold amount based on the histogram.
 10. The computer-readable media of claim 8, wherein the method further comprises: setting an aging parameter of the indicator in the metadata, at a start of a time interval of erasure immunity; adjusting the aging parameter towards allowance of erasure, responsive to completing a cycle of garbage collection or a passage of time.
 11. The computer-readable media of claim 8, wherein the method further comprises: tracking file creation, file deletion, or frequency of re-creation of data, in a metadata table; and adjusting a time interval of erasure immunity, based on the tracking.
 12. The computer-readable media of claim 8, wherein the method further comprises: adjusting a value of a threshold of an amount of data applied in the monitoring, based on utilization of storage capacity of the storage system.
 13. The computer-readable media of claim 8, wherein the method further comprises: performing garbage collection, to erase portions of storage memory of the storage system except where an indicator establishes a time interval of erasure immunity for the at least portions of the repeated data.
 14. A storage system, with deduplication, comprising: storage memory; and at least one processor of the storage system, configured to write an indicator to metadata of the storage system, the indicator protecting at least portions of user data from erasure during garbage collection, responsive to the at least one processor identifying the user data as having at least a threshold amount of data that is repeated on a periodic basis, wherein the at least one processor is configured to execute a garbage collection process, which includes erasing portions of storage memory of the storage system except where metadata prevents the erasure during the garbage collection.
 15. The storage system of claim 14, further comprising: the at least one processor configured to generate a histogram of user data over time, the histogram indicating at least one of: frequency of re-creation of data, or amount of repeated data, wherein the identifying is based on the histogram.
 16. The storage system of claim 14, further comprising: the at least one processor configured to monitor amount of storage capacity of the storage memory utilized and to adjust a predetermined time interval or a value of the threshold amount based on the amount of storage capacity utilized.
 17. The storage system of claim 14, further comprising: the indicator including an aging parameter; the at least one processor configured to adjust the aging parameter to or towards a first value, responsive to the identifying, wherein the first value prevents the erasure during garbage collection; the at least one processor configured to adjust the aging parameter towards a second value, responsive to passage of time or completion of a garbage collection cycle, wherein the second value allows the erasure during garbage collection.
 18. The storage system of claim 14, further comprising: the at least one processor configured to perform in-line deduplication on data arriving for storage in the storage memory, with reference to the at least portions of user data associated with the indicator.
 19. The storage system of claim 14, further comprising: the at least one processor configured to perform post-process deduplication on data stored in the storage memory, with reference to the at least portions of the user data associated with the indicator.
 20. The storage system of claim 14, further comprising: the at least one processor configured to perform a hash function on data arriving for storage in the storage memory or data stored in the storage memory, wherein the identifying is based on results of the hash function. 